PT-2026-52730 · WordPress · Geodirectory
Manop55555
·
Published
2026-06-26
·
Updated
2026-06-26
·
CVE-2026-54831
CVSS v3.1
9.3
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
GeoDirectory versions prior to 2.8.163
Description
An unauthenticated SQL Injection exists in the software. SQL Injection is a type of vulnerability that allows an attacker to interfere with the queries that an application makes to its database, potentially allowing them to view data they are not normally able to retrieve.
Recommendations
Update to a version newer than 2.8.162.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Geodirectory